alt Hacker NewsI don’t understand why people promote password managers for individuals. You don’t need to store your password in a central location that is a prime target to hackers; even if it’s encrypted, that’s more of a risk than keeping one of your own.
And some of the previous advice they’re stepping back from like avoiding QR codes you’re unfamiliar with is still good advice; you should be careful and not expose yourself too much.
1. People are terrible at creating strong passwords. People will NOT create hundreds of strong passwords.
2. People will not use complex solutions unless actively and rigidly enforced.
3. At best, we can hope that they can create one really good passphrase. That's combined with MFA.
There are people that are exceptions to those, but they're vanishingly small percentage of the population. And unfortunately, there are a way, way more people that think they have something better but are deluding themselves -- like bad card counters that casinos are happy to have at the blackjack table or non-experts rolling their own crypto.